I would that only User ( or an admin) who creates the comment can it modify. I followed the step 7-8 in documentation about acl and so I add acl in my config but it does not works.
The author of the comment is identified but he can modify all the comments.
ROLE_USER indicates that the user is able to edit any comment if they have this role. It does not contain additional logic to check for ownership.
The Role implementation for CB does not support checking for ownership at this time.
You will need to either implement your own classes implementing Acl/*AclInterface.php classes to add this check, or use the Symfony Security ACL system which will store the ownership records.
I just came across this problem. Is there an integrated solution or example of that yet?